Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
File: IY2yiCPzcIslWqEkum73QdET6vM.mft (raw, json)
Hash identifier: K0tNa2oEzPm+WZTx1v8KOuCtqsaTF0CSRoxD4OhLQwg=
Subject key identifier: 5D:49:5D:58:DE:69:99:51:45:66:55:D2:C7:55:46:CE:A5:06:FD:78
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019EC224BC23E9214DCDDC00F3058ACC894D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
Manifest number: 1156
Signing time: Sat 13 Jun 2026 18:00:47 +0000
Manifest this update: Sat 13 Jun 2026 18:00:47 +0000
Manifest next update: Sun 14 Jun 2026 18:00:47 +0000
Files and hashes: 1: IY2yiCPzcIslWqEkum73QdET6vM.crl (hash: q1VdZ5eBvwNv14GYPWeUxz2fBGrlR1qeeY4dq3c/Hpw=)
2: f7qLZUl_FwNxE3w_k0K8MDDnPE4.roa (hash: iT3SrQGihsPU4xD+7248AXf2sfstLnnSHt1kFE/x28E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:bc:23:e9:21:4d:cd:dc:00:f3:05:8a:cc:89:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jun 13 18:00:47 2026 GMT
Not After : Jun 14 18:00:47 2026 GMT
Subject: CN=5d495d58de699951456655d2c75546cea506fd78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ab:9e:b0:5d:77:4f:9b:67:27:28:5c:a0:45:
0f:46:b6:90:24:6a:5a:52:d6:15:97:ab:85:c0:ec:
72:29:9e:ac:c1:19:74:8d:79:38:c6:0c:3a:ab:40:
5f:0f:43:d3:f8:7f:0a:d1:35:1f:12:b0:09:60:9c:
23:e0:7c:40:58:05:c8:1e:ed:4c:9c:1d:fa:d4:b0:
73:02:cf:0f:69:ba:23:41:7d:db:f6:83:95:10:d9:
b3:93:84:ca:97:30:04:d4:18:93:dd:68:d3:8a:2d:
1a:08:93:8d:87:52:48:a5:32:5c:64:2d:f8:bb:3a:
45:63:7d:34:8e:ec:35:5a:0e:1f:f1:e9:f4:21:ed:
26:14:7d:45:7a:0c:df:46:20:e6:8b:81:d5:c0:89:
6c:ef:65:23:3b:f1:01:ed:40:3e:2e:9f:c5:4e:7f:
ea:f4:92:cb:4d:02:1f:d0:7e:ee:92:5b:81:ab:ea:
98:72:91:e2:45:5b:b3:15:8e:11:73:44:c0:13:9a:
de:e5:58:2d:63:cd:0d:87:71:25:b0:0b:a0:aa:a1:
38:6b:f0:bb:e5:69:7d:12:71:bd:14:99:b4:0c:d2:
ed:7c:9b:2e:3a:4e:4b:f5:59:17:64:53:1f:ca:e3:
eb:24:1d:5e:8a:ba:4b:fa:7f:6d:ab:45:0d:8c:cb:
2c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:49:5D:58:DE:69:99:51:45:66:55:D2:C7:55:46:CE:A5:06:FD:78
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:ad:e0:c9:58:d5:2a:8d:5f:ab:62:df:4f:1b:72:0d:d5:64:
1b:02:c1:82:7e:bf:ac:cd:02:93:23:53:74:ca:b4:af:57:c6:
ec:19:5a:ab:30:e9:76:fc:20:0d:7a:c5:fc:57:9e:a1:56:e7:
e2:26:7c:74:7d:e3:ce:31:72:28:04:ed:85:9c:d5:c0:b9:f4:
a8:9b:01:1d:56:29:40:26:0f:ce:a6:ea:ce:f6:5c:a7:1c:71:
4f:17:02:0b:a1:26:9c:74:5e:24:f3:50:de:83:be:3a:96:23:
39:4e:35:89:1a:55:2a:9c:4b:72:5a:33:9a:89:a0:7d:6c:0a:
bd:3e:50:9c:d3:cd:e5:fc:2e:ee:7e:13:00:ef:72:8b:71:52:
86:31:00:1a:10:f2:5e:cd:7a:9b:e6:09:09:14:90:f2:c2:e8:
d1:7c:5b:37:de:31:d7:4e:b4:db:88:72:13:47:e4:21:03:a6:
75:3a:29:b7:f7:20:7b:ad:da:31:8b:12:74:44:1e:30:60:9c:
51:8b:44:fc:7e:65:ff:54:b6:64:47:77:2d:44:19:82:35:ff:
fa:f0:04:63:e9:9f:38:52:6c:ef:a8:0a:10:2c:53:91:d2:0b:
a0:42:83:ad:4d:98:0c:8e:54:68:69:5f:e3:aa:23:b8:be:89:
16:63:b9:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:26:23 2026 by rpki-client